34.0.0 Boulder Opal
IR
527215
CloudBasic
14:27:15
23/11/2021
Doc0011222003.exe
default.jbs
Windows 10 64 bit v1803 with Office Professional Plus 2016, Chrome 85, IE 11, Adobe Reader DC 19, Java 8 Update 211
WINDOWS
e70022c5636db76b71c8b2c56552c60c
4589b37f02bb95d26bb2ba369c46c99268ce2985
0226b26f82ea7ab25ad85a4cfda530f7b28f91b1d57f8ca0361b7b03e8ce59bb
Win32 Executable (generic) a (10002005/4) 99.15%
true
false
false
false
56
0
100
5
0
5
false
C:\Users\user\AppData\Local\Temp\~DFC89CDF2998EDD482.TMP
false
8BE47FF78C4F694E6577D8CB72B022C9
A32191D769A55B59B38A93EBEA848166EA27F0D6
A1005C0FAF60AA8C70AD16C4369E6D3FA2357687BC10EE55656363B01DDD633E
Found potential dummy code loops (likely to delay analysis)
Tries to detect virtualization through RDTSC time measurements
Yara detected GuLoader